dfbc71240bad96780b4cfb45fceaae74_JaffaCakes118

General

Target

dfbc71240bad96780b4cfb45fceaae74_JaffaCakes118
Size

13.4MB
MD5

dfbc71240bad96780b4cfb45fceaae74
SHA1

8131ce4f61552f7c2bc5eaa73b90015f2eab225a
SHA256

4b8895c2faa57c4b3e806bda8237009176e2c15658c5d34116d248c9f535255e
SHA512

5f26244a49e60426d877fca7fe52645c9d526614437efefac37a231c1952a0fedafd5e8f0e83d006b54fd08c690efcaa483acd62ea4705248155c92f98d8a236
SSDEEP

393216:PJPRIAJFeQevaZVNswbzjwExXR2eMAumNP7F:PJWAHZzDzRxM1mNjF

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 13 IoCs

description	ioc
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS

Files

dfbc71240bad96780b4cfb45fceaae74_JaffaCakes118
.apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

com.zhizun.zhizuntianxia

com.yinrui.kqjr.activity.SplashActivity

Activities

com.appkefu.lib.ui.activity.KFWebBrowserActivity

android.intent.action.VIEW

com.yinrui.kqjr.activity.SplashActivity

android.intent.action.MAIN

com.mob.tools.MobUIShell

android.intent.action.VIEW
com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

Permissions

android.permission.READ_LOGS
android.permission.CALL_PHONE
android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.CAMERA
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.VIBRATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.RECORD_AUDIO
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_SETTINGS
android.permission.CHANGE_NETWORK_STATE
android.permission.GET_TASKS
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.READ_SMS

Receivers

com.appkefu.lib.receivers.KFNetworkConnectivityReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.appkefu.lib.receivers.KFBootReceiver

android.intent.action.BOOT_COMPLETED

com.appkefu.lib.receivers.KFPowerReceiver

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.appkefu.lib.receivers.KFMessageReceiver

com.appkefu.lib.action.XMPP.MESSAGE_RECEIVED

com.appkefu.lib.receivers.KFScreenReceiver

android.intent.action.USER_PRESENT

com.appkefu.lib.receivers.KFAlarmReceiver

com.appkefu.lib.action.LOGIN_ALARM

com.umeng.message.SystemReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.MessageReceiver

org.agoo.android.intent.action.RECEIVE

com.umeng.message.ElectionReceiver

org.agoo.android.intent.action.ELECTION_RESULT_V4

com.umeng.message.RegistrationReceiver

com.zhizun.zhizuntianxia.intent.action.COMMAND

com.umeng.message.UmengMessageBootReceiver

android.intent.action.BOOT_COMPLETED

Services

com.appkefu.lib.service.KFMainService

com.appkefu.lib.action.kefu.LOGIN_WITH_OPENUDID
com.appkefu.lib.action.DISCONNECT
com.appkefu.lib.action.TOGGLE
com.appkefu.lib.action.SEND
com.appkefu.lib.action.NETWORK_STATUS_CHANGED
com.appkefu.lib.action.XMPP.MESSAGE_RECEIVED

com.appkefu.OpenUDID.OpenUDID_service

org.openudid.GETUDID

com.umeng.message.UmengService

com.zhizun.zhizuntianxia.intent.action.START
com.zhizun.zhizuntianxia.intent.action.COCKROACH
org.agoo.android.intent.action.PING_V4

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService
org.android.agoo.client.ElectionReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.unregistercallback.action
com.umeng.message.message.handler.action
com.umeng.message.autoupdate.handler.action

Android Permissions

dfbc71240bad96780b4cfb45fceaae74_JaffaCakes118

Permissions

android.permission.READ_LOGS

android.permission.CALL_PHONE

android.permission.INTERNET

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CAMERA

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.CAMERA

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.VIBRATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.RECORD_AUDIO

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_SETTINGS

android.permission.CHANGE_NETWORK_STATE

android.permission.GET_TASKS

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.READ_SMS

Sharing

General

Malware Config

Signatures

Files

com.zhizun.zhizuntianxia

com.yinrui.kqjr.activity.SplashActivity

Activities

com.appkefu.lib.ui.activity.KFWebBrowserActivity

com.yinrui.kqjr.activity.SplashActivity

com.mob.tools.MobUIShell

Permissions

Receivers

com.appkefu.lib.receivers.KFNetworkConnectivityReceiver

com.appkefu.lib.receivers.KFBootReceiver

com.appkefu.lib.receivers.KFPowerReceiver

com.appkefu.lib.receivers.KFMessageReceiver

com.appkefu.lib.receivers.KFScreenReceiver

com.appkefu.lib.receivers.KFAlarmReceiver

com.umeng.message.SystemReceiver

com.umeng.message.MessageReceiver

com.umeng.message.ElectionReceiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengMessageBootReceiver

Services

com.appkefu.lib.service.KFMainService

com.appkefu.OpenUDID.OpenUDID_service

com.umeng.message.UmengService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

dfbc71240bad96780b4cfb45fceaae74_JaffaCakes118